2024-05-17_fe535d65e76096dcda062ca359d1c2d8_mafia

Sharing

Copy URL Twitter E-mail

General

Target

2024-05-17_fe535d65e76096dcda062ca359d1c2d8_mafia
Size

3.0MB
MD5

fe535d65e76096dcda062ca359d1c2d8
SHA1

41da04a31cde0fa267b70223ad4c62dd3b3634e8
SHA256

332957d956c749bd7115b808716643034e2f0b6de0ff834499b17a796c7c485d
SHA512

9184476b071831ce9a5df3e95b22e3e1d16a4da6f73813336bd3e260dcf6c9aeeefb2ef18893508f6ea1c101e01de2be0bf06b06dcee56efff8fc23a65da56a4
SSDEEP

49152:bHCWDrTolWVgE1y6MO+i5pNjmpTmOuH7JL6Yj1zNM2qM+St/VYstTNa2i1i3XqZb:bHjvosgEZMO+i5pNjmpTmOuw41O2qM+/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-05-17_fe535d65e76096dcda062ca359d1c2d8_mafia

Files

2024-05-17_fe535d65e76096dcda062ca359d1c2d8_mafia
.exe windows:5 windows x86 arch:x86

c150a7b244553197c4dc90ad445bc424

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Users\build_installer\AppData\Local\Temp\release\mvn\NeroOSValidator\target\classes\x86\Release\NeroOSValidator.pdb

Imports

kernel32

TerminateProcess
UnhandledExceptionFilter
IsDebuggerPresent
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
GetTimeZoneInformation
LCMapStringW
GetStringTypeW
IsProcessorFeaturePresent
GetConsoleCP
GetEnvironmentStringsW
GetFileInformationByHandle
PeekNamedPipe
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
CreateFileA
GetProcessHeap
SetEnvironmentVariableA
FreeEnvironmentStringsW
SetUnhandledExceptionFilter
VirtualQuery
VirtualAlloc
GetSystemTimeAsFileTime
HeapSize
HeapQueryInformation
CreateThread
ExitThread
SetStdHandle
HeapReAlloc
ExitProcess
InterlockedCompareExchange
GetStdHandle
GetFileType
WriteConsoleW
GetDriveTypeW
FindFirstFileExW
HeapAlloc
HeapFree
RtlUnwind
QueryPerformanceCounter
GetDateFormatW
GetTimeFormatW
CreateDirectoryW
DecodePointer
EncodePointer
GetStartupInfoW
HeapSetInformation
GetCommandLineW
GetUserDefaultLCID
SearchPathW
Sleep
GetProfileIntW
GetNumberFormatW
GetWindowsDirectoryW
GetTickCount
GetTempFileNameW
SetErrorMode
FindResourceExW
GetFileTime
GetFileSizeEx
GetFileAttributesExW
GetFullPathNameW
GetVolumeInformationW
FindFirstFileW
FindClose
GetCurrentProcess
DuplicateHandle
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
CreateFileW
GetThreadLocale
GlobalGetAtomNameW
HeapCreate
RaiseException
DeleteFileW
GlobalFlags
GetSystemDirectoryW
GetCurrentDirectoryW
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
InitializeCriticalSection
GlobalHandle
GlobalReAlloc
TlsGetValue
LocalAlloc
InterlockedIncrement
VirtualProtect
GlobalFindAtomW
CompareStringW
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
InterlockedDecrement
ReleaseActCtx
CreateActCtxW
GlobalAddAtomW
WaitForSingleObject
ResumeThread
SetThreadPriority
GetPrivateProfileStringW
WritePrivateProfileStringW
GetPrivateProfileIntW
lstrcmpA
GlobalDeleteAtom
GetCurrentThread
GetCurrentThreadId
ConvertDefaultLocale
CompareStringA
ActivateActCtx
DeactivateActCtx
lstrcmpW
LoadLibraryExW
InterlockedExchange
GlobalFree
CopyFileW
GlobalSize
GlobalAlloc
GlobalLock
GlobalUnlock
MulDiv
GetModuleFileNameA
FreeResource
OpenFileMappingW
GetCurrentProcessId
CreateFileMappingW
MapViewOfFile
UnmapViewOfFile
GetUserDefaultUILanguage
GetSystemDefaultUILanguage
CloseHandle
GetLocaleInfoW
lstrcpyW
lstrcmpiW
lstrcatW
WinExec
LoadLibraryW
GetFileAttributesW
GetUserDefaultLangID
FileTimeToLocalFileTime
FileTimeToSystemTime
lstrlenW
WideCharToMultiByte
SetLastError
FormatMessageW
LocalFree
lstrlenA
GetLastError
GetModuleFileNameW
GetLongPathNameW
FreeLibrary
MultiByteToWideChar
GetSystemTime
GetTempPathW
GetSystemInfo
GetModuleHandleW
GetProcAddress
GetVersionExW
GetSystemDefaultLangID
FindResourceW
LoadResource
LockResource
SizeofResource
SetHandleCount
GetConsoleMode

user32

PostThreadMessageW
CreateMenu
IsMenu
UpdateLayeredWindow
MonitorFromPoint
TranslateMDISysAccel
DrawMenuBar
DefMDIChildProcW
DefFrameProcW
UnionRect
GetKeyNameTextW
GetIconInfo
EnableScrollBar
HideCaret
InvertRect
GetMenuDefaultItem
RegisterClipboardFormatW
LockWindowUpdate
SetCursorPos
CreateAcceleratorTableW
GetKeyboardState
GetKeyboardLayout
MapVirtualKeyW
ToUnicodeEx
DrawFrameControl
DrawEdge
DrawIconEx
DrawStateW
GetSystemMenu
SetClassLongW
NotifyWinEvent
DestroyAcceleratorTable
SetParent
SetWindowRgn
IsZoomed
UnpackDDElParam
ReuseDDElParam
LoadImageW
LoadAcceleratorsW
InsertMenuItemW
CreatePopupMenu
BringWindowToTop
TranslateAcceleratorW
CopyImage
DestroyMenu
GetMenuItemInfoW
UnregisterClassW
DestroyIcon
IsIconic
MessageBeep
GetNextDlgGroupItem
InvalidateRgn
IsRectEmpty
CopyAcceleratorTableW
CharNextW
CharUpperW
RealChildWindowFromPoint
SetLayeredWindowAttributes
EnumDisplayMonitors
SetRectEmpty
DeleteMenu
WaitMessage
WindowFromPoint
IntersectRect
GetAsyncKeyState
LoadMenuW
CreateDialogIndirectParamW
GetNextDlgTabItem
EndDialog
ShowWindow
CheckDlgButton
RegisterWindowMessageW
LoadIconW
SendDlgItemMessageW
SendDlgItemMessageA
SetMenuDefaultItem
GetClassLongW
SetPropW
GetPropW
RemovePropW
SetFocus
GetWindowTextLengthW
GetForegroundWindow
SetActiveWindow
BeginDeferWindowPos
EndDeferWindowPos
GetDlgItem
GetTopWindow
GetMessageTime
GetMessagePos
MonitorFromWindow
GetMonitorInfoW
MapWindowPoints
ScrollWindow
TrackPopupMenu
SetMenu
SetScrollRange
GetScrollRange
SetScrollPos
GetScrollPos
SetForegroundWindow
ShowScrollBar
UpdateWindow
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
AdjustWindowRectEx
EqualRect
DeferWindowPos
GetScrollInfo
SetScrollInfo
SetWindowPlacement
GetWindowPlacement
DefWindowProcW
CallWindowProcW
GetMenu
CopyRect
EndPaint
BeginPaint
GetWindowDC
ClientToScreen
GrayStringW
DrawTextExW
DrawTextW
TabbedTextOutW
FillRect
GetWindowThreadProcessId
GetLastActivePopup
UnhookWindowsHookEx
ShowOwnedPopups
SetWindowsHookExW
CallNextHookEx
GetMessageW
TranslateMessage
DispatchMessageW
GetActiveWindow
PeekMessageW
ValidateRect
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
LoadBitmapW
ModifyMenuW
EnableMenuItem
CheckMenuItem
SetWindowContextHelpId
SetWindowPos
PostQuitMessage
GetMenuState
GetMenuStringW
IsClipboardFormatAvailable
FrameRect
GetUpdateRect
OpenClipboard
SetClipboardData
CloseClipboard
GetWindowRgn
DestroyCursor
DrawIcon
AppendMenuW
GetMenuItemID
InsertMenuW
GetMenuItemCount
GetSubMenu
RemoveMenu
LoadStringW
SetWindowTextW
GetDlgCtrlID
GetWindowLongW
GetClassNameW
SubtractRect
MapVirtualKeyExW
IsCharLowerW
GetDoubleClickTime
CharUpperBuffW
GetCapture
EmptyClipboard
GetWindowTextW
IsWindowEnabled
IsDialogMessageW
GetDesktopWindow
MapDialogRect
GetWindowRect
InflateRect
GetWindow
CopyIcon
KillTimer
GetCursorPos
SetCursor
SetWindowLongW
SetTimer
RedrawWindow
DrawFocusRect
PtInRect
GetKeyState
WinHelpW
GetParent
IsChild
GetFocus
ScreenToClient
PostMessageW
SendMessageW
GetSysColor
SystemParametersInfoW
EnableWindow
ReleaseCapture
IsWindowVisible
GetSysColorBrush
LoadCursorW
IsWindow
DestroyWindow
SetCapture
InvalidateRect
ReleaseDC
GetDC
GetClientRect
OffsetRect
SetRect
GetSystemMetrics
MessageBoxW
MoveWindow

gdi32

SetRectRgn
RectVisible
CombineRgn
GetMapMode
PatBlt
DPtoLP
CreateDIBitmap
CreateCompatibleBitmap
GetTextMetricsW
EnumFontFamiliesW
GetTextCharsetInfo
GetBkColor
GetTextColor
GetRgnBox
EnumFontFamiliesExW
CreateDIBSection
CreateRoundRectRgn
CreatePolygonRgn
CreateEllipticRgn
Polyline
Ellipse
Polygon
CreatePalette
GetPaletteEntries
GetNearestPaletteIndex
RealizePalette
GetSystemPaletteEntries
OffsetRgn
SetDIBColorTable
CreateRectRgnIndirect
CreateSolidBrush
SetPixel
Rectangle
LPtoDP
GetWindowOrgEx
GetViewportOrgEx
PtInRegion
FillRgn
FrameRgn
GetBoundsRect
ExtFloodFill
SetPaletteEntries
SetPixelV
PtVisible
GetPixel
CreateHatchBrush
BitBlt
GetWindowExtEx
CreatePen
GetObjectType
SelectPalette
CreateCompatibleDC
CreatePatternBrush
DeleteDC
ExtSelectClipRgn
ScaleWindowExtEx
SetWindowExtEx
OffsetWindowOrgEx
SetWindowOrgEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
Escape
StretchBlt
CreateFontIndirectW
GetViewportExtEx
CreateRectRgn
SelectClipRgn
DeleteObject
SetLayout
GetLayout
SetTextAlign
MoveToEx
LineTo
IntersectClipRect
ExcludeClipRect
GetClipBox
SetMapMode
SetTextColor
SetROP2
SetPolyFillMode
SetBkMode
SetBkColor
RestoreDC
SaveDC
CreateBitmap
CreateDCW
CopyMetaFileW
GetDeviceCaps
SelectObject
GetTextExtentPointW
SetTextJustification
TextOutW
GetStockObject
GetObjectW
GetTextFaceW
GetTextExtentPoint32W
ExtTextOutW

msimg32

AlphaBlend
TransparentBlt

comdlg32

GetFileTitleW

winspool.drv

OpenPrinterW
ClosePrinter
DocumentPropertiesW

advapi32

RegEnumKeyW
RegCloseKey
RegQueryValueExW
RegSetValueExW
RegDeleteValueW
RegOpenKeyExW
RegQueryValueW
RegOpenCurrentUser
RegDeleteKeyW
RegCreateKeyExW
RegEnumValueW
RegEnumKeyExW

shell32

SHAppBarMessage
SHGetFileInfoW
DragFinish
DragQueryFileW
SHBrowseForFolderW
ShellExecuteW
SHGetSpecialFolderLocation
SHGetPathFromIDListW
SHGetDesktopFolder

comctl32

InitCommonControlsEx
ImageList_GetIconSize

shlwapi

PathFindExtensionW
PathFindFileNameW
PathStripToRootW
PathIsUNCW
PathFileExistsW
PathRemoveFileSpecW

ole32

OleLockRunning
IsAccelerator
OleTranslateAccelerator
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
CoInitializeEx
OleInitialize
CoFreeUnusedLibraries
OleUninitialize
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
CoCreateInstance
CLSIDFromProgID
OleDuplicateData
CoTaskMemAlloc
ReleaseStgMedium
CoTaskMemFree
CoRegisterMessageFilter
CoInitialize
CoUninitialize
CreateStreamOnHGlobal
OleIsCurrentClipboard
OleFlushClipboard
DoDragDrop
RevokeDragDrop
CoLockObjectExternal
RegisterDragDrop
OleGetClipboard
CoCreateGuid
CLSIDFromString
CoRevokeClassObject

oleaut32

VariantTimeToSystemTime
OleCreateFontIndirect
VarBstrFromDate
SafeArrayDestroy
VariantCopy
SysStringLen
VariantInit
VariantChangeType
VariantClear
SysAllocStringLen
SysAllocString
SysFreeString
VarUdateFromDate
SystemTimeToVariantTime

oledlg

OleUIBusyW

version

GetFileVersionInfoSizeW
GetFileVersionInfoW
VerQueryValueW

oleacc

LresultFromObject
AccessibleObjectFromWindow
CreateStdAccessibleObject

gdiplus

GdipGetImageGraphicsContext
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromStream
GdipGetImagePalette
GdipGetImagePaletteSize
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipCloneImage
GdipDrawImageRectI
GdipSetInterpolationMode
GdipCreateFromHDC
GdiplusShutdown
GdiplusStartup
GdipCreateBitmapFromHBITMAP
GdipDisposeImage
GdipDeleteGraphics
GdipAlloc
GdipFree
GdipDrawImageI

imm32

ImmGetOpenStatus
ImmReleaseContext
ImmGetContext

winmm

PlaySoundW

Sections

.text
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 326KB - Virtual size: 326KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 58KB - Virtual size: 89KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 557KB - Virtual size: 556KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 748KB - Virtual size: 752KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

c150a7b244553197c4dc90ad445bc424

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

kernel32

user32

gdi32

msimg32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

ole32

oleaut32

oledlg

version

oleacc

gdiplus

imm32

winmm

Sections

.text Size: 1.3MB - Virtual size: 1.3MB

.rdata Size: 326KB - Virtual size: 326KB

.data Size: 58KB - Virtual size: 89KB

.rsrc Size: 557KB - Virtual size: 556KB

.reloc Size: 748KB - Virtual size: 752KB

.text
Size: 1.3MB - Virtual size: 1.3MB

.rdata
Size: 326KB - Virtual size: 326KB

.data
Size: 58KB - Virtual size: 89KB

.rsrc
Size: 557KB - Virtual size: 556KB

.reloc
Size: 748KB - Virtual size: 752KB